Krebs on Security

Visit site
last updated 9 months ago
In-depth security news and investigation
  • Barracuda Urges Replacing — Not Patching — Its Email Security Gateways
    It's not often that a zero-day vulnerability causes a network security vendor to urge customers to physically remove and decommission an entire line of affected hardware -- as opposed to just applying...
  • Service Rents Email Addresses for Account Signups
    One of the most expensive aspects of any cybercriminal operation is the time and effort it takes to create large numbers of new throwaway email accounts. Now a new service offers to help dramatically cut...
  • Ask Fitis, the Bear: Real Crooks Sign Their Malware
    Code-signing certificates are supposed to help authenticate the identity of software publishers, and provide cryptographic assurance that a signed piece of software has not been altered or tampered with. Both...
  • Discord Admins Hacked by Malicious Bookmarks
    A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark.
  • Phishing Domains Tanked After Meta Sued Freenom
    The number of phishing websites tied to domain name registrar Freenom dropped precipitously in the months surrounding a recent lawsuit from social networking giant Meta, which alleged the free domain name...
  • Interview With a Crypto Scam Investment Spammer
    Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. What follows is an interview with a Russian hacker...
  • Russian Hacker “Wazawaka” Indicted for Ransomware
    A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. U.S....
  • Re-Victimization from Police-Auctioned Cell Phones
    Countless smartphones seized in arrests and searches by police forces across the United States are being auctioned online without first having the data on them erased, a practice that can lead to crime...
  • Microsoft Patch Tuesday, May 2023 Edition
    Microsoft today released software updates to fix at least four dozen security holes in its Windows operating systems and other software, including patches for two zero-day vulnerabilities that are already...
  • Feds Take Down 13 More DDoS-for-Hire Services
    The U.S. Federal Bureau of Investigation (FBI) this week seized 13 domain names connected to “booter” services that let paying customers launch crippling distributed denial-of-service (DDoS) attacks. Ten of...
Copyright © 2021 CyberShell's Blog
All Rights Reserved
CyberShell's Blog
My blog on Privacy and Security
dtp-sites v0.7.13
© 2023 CyberShell
Made In USA 🇺🇸